MetinvestChief Information Security Officer 🎯
Nov. 2009 - Jul. 2011Open Joint Stock Avdeevskiy Coke-Chemical Plant, Metinvest HoldingKnowledge of information security standards. ▪ ISO/IEC 27000 series (former 17799): Information Security Management Systems. ▪ Security analysis toolkits: Backtrack, Metasploit Framework, Nessus, Nmap, MBSA, Secunia PSI/NSI, Nipper, Xspider, LANguard, various web- and SQL- fuzzers, wired and wireless packet analyzers etc. ▪ Firewall inspection and configuration: iptables, ipf, ISA Server. ▪ Password policy inspection. Cryptography, encryption and certificate management. ▪ PGP/GPG, S/MIME, SSL/TLS wrappers. ▪ PKI with OpenCA, MS CA, OpenSSL. ▪ FDE with Pointsec, Truecrypt, LVM and LUKS. ▪ Cryptanalysis tools and techniques. Access control implementations. ▪ MS Active Directory, LDAP, MAC/RBAC, SELinux. Installation and maintenance for secure mail systems. ▪ Sendmail, Postfix, MS Exchange, various IMAP/POP3 mail delivery agents. ▪ MailScanner, AMaViS, MailMarshal, SpamAssassin, . ▪ PGP/GPG, S/MIME, TLS/SSL, relay control, DoS evasion etc. Administration and secure configuration for Cisco switches, routers and firewalls. ▪ Network security policies (ASA/PIX), access and flow control (ACL, monitor sessions), and network segmentation (VLAN). ▪ VPN access and tunnels, Wi-Fi access points, external authentication and authorization (RADIUS, AD/LDAP/Kerberos). Administration and secure configuration for various types of operating environments. ▪ MS Windows family. ▪ Numerous Linux distributions: RHEL/CentOS/Fedora Core, Gentoo, Debian/Ubuntu, ArchLinux, Knoppix etc, some FreeBSD and MacOS X experience. Intrusion Detection/Prevention Systems and monitoring tools. ▪ Tripwire, Aide, OSSEC, Snort. ▪ Nagios, PRTG, SNMP scripting. ▪ Various kinds of system and application services, including their hardening.